We are looking to take on a few hundred of these endpoints and have got them working well with Asterisk (18.20.2) so far. My only stumbling block has been getting the phones to use SIP with TLS. We don’t want to manage client certificates, just get encryption working for SIP, similar to our usual Polycom endpoints.
Asterisk is using a certificate from Let’s Encrypt, so I’ve provided the ISRG root cert in the USER_KEYS config file, the SRV records are set up in DNS, and I can see the phone talking to port 5061 at boot – packet capture shows a TLS 1.2 HELLO, followed by Asterisk sending its cert. But then it just reverts to UDP 5060 for signalling. Nothing useful in the phone logs that I can see.
Does anyone have any experience with using these endpoints with Asterisk and TLS?
Solved my own problem. Buried at the end of the “Licensing” section of documentation:
Licensed features
The following Standard features are available to all users without a token.
• SIP Core Features (RFC3261 and SIPPING 19)
• 3-way calling and conference calling
• Audio codecs - standard and wideband
• Auto Login and Auto Logout
• Background Image
• Busy Lamp Field (BLF)
• Distinctive ringing
• Downloadable ringtones
• Image screensaver and lock
• Standard font languages
• Multiple calls per user
• Server failover redundancy
• Session timers
• SNTP (time server)
• Speed Dial List
• Transfer to VM softkey
• USB flash drive
• Hotline
The following extended features are available with a token or if the IP Deskphone is registered to a recognized Avaya server (Avaya, Avaya Communication Server 1000, or IP Office) then extended features are available without a token.
• Standard features
• Authentication security
• Bluetooth headset support (1140E)
• Call Server Service Package
• Expansion Module support
• Instant Messaging
• Media Security (SRTP)
• Multiuser login support
• NAT Traversal/STUN
• Proactive Voice Quality Management
• PC Client Control
• Signaling Security (TLS)
• USB headset support for audio
• IPv6 support
The following advanced features are available with two tokens or if the IP Deskphone is registered to a recognized Avaya server (Avaya, Avaya Communication Server 1000, or IP Office) then advanced features are available with one token.